Log z OTL

Wszystko co dotyczy bezpieczeństwa systemów oraz walki z malware, w szczególności analiza logów
Maniek13

Użytkownik
Posty: 141
Rejestracja: 21 kwie 2012, 16:22

Log z OTL

Post01 maja 2012, 13:53

Witam wszystkich. Nie wiem czy w dobrym dziale pisze ale chciałbym się dowiedzieć czy wszystko jest dobrze w komputerze. Oto log z OTL.

OTL.txt :

Kod: Zaznacz cały

OTL logfile created on: 2012-05-01 13:31:21 - Run 1
OTL by OldTimer - Version 3.2.42.2     Folder = F:\Instalatory Programów
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
766,80 Mb Total Physical Memory | 518,29 Mb Available Physical Memory | 67,59% Memory free
1,83 Gb Paging File | 1,52 Gb Available in Paging File | 82,68% Paging File free
Paging file location(s): C:\pagefile.sys 1152 2304 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 24,94 Gb Free Space | 85,13% Space Free | Partition Type: NTFS
Drive D: | 39,06 Gb Total Space | 4,35 Gb Free Space | 11,14% Space Free | Partition Type: NTFS
Drive E: | 11,64 Gb Total Space | 11,58 Gb Free Space | 99,48% Space Free | Partition Type: NTFS
Drive F: | 39,07 Gb Total Space | 12,55 Gb Free Space | 32,11% Space Free | Partition Type: NTFS
Drive G: | 29,98 Gb Total Space | 9,36 Gb Free Space | 31,23% Space Free | Partition Type: NTFS
 
Computer Name: PC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-04-29 21:37:20 | 000,595,456 | ---- | M] (OldTimer Tools) -- F:\Instalatory Programów\OTL.exe
PRC - [2012-03-11 21:13:22 | 001,983,232 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
PRC - [2012-03-11 21:13:02 | 006,749,512 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
PRC - [2012-02-24 10:18:02 | 010,441,728 | ---- | M] (Creative Team S.A.) -- C:\Program Files\WapSter\WapSter AQQ\AQQ.exe
PRC - [2010-08-07 13:38:00 | 001,262,592 | ---- | M] (AIMP DevTeam) -- C:\Program Files\AIMP2\AIMP2.exe
PRC - [2009-06-27 17:16:26 | 003,642,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007-12-14 14:28:02 | 000,716,800 | ---- | M] (Edimax Technology Co., Ltd) -- C:\Program Files\EDIMAX\Common\RaUI.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-02-24 22:54:58 | 001,186,304 | ---- | M] () -- C:\Program Files\WapSter\WapSter AQQ\System\Shared\Plugins\GGNet.dll
MOD - [2011-12-19 18:59:44 | 000,068,424 | ---- | M] () -- C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
MOD - [2011-07-18 23:04:08 | 000,296,448 | ---- | M] () -- C:\Program Files\Notepad++\NppShell_04.dll
MOD - [2009-12-26 22:23:50 | 000,186,880 | ---- | M] () -- C:\Program Files\AIMP2\sqlite3.dll
MOD - [2008-03-23 00:01:34 | 000,039,424 | ---- | M] () -- C:\Program Files\Alky for Applications\vshellext.dll
MOD - [2007-11-28 04:32:00 | 001,163,264 | ---- | M] () -- C:\Program Files\EDIMAX\Common\acAuth.dll
MOD - [2006-03-04 02:52:00 | 000,088,576 | ---- | M] () -- C:\Program Files\AIMP2\OptimFROG.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\alg.exe -- (ALG)
SRV - [2012-03-11 21:13:22 | 001,983,232 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2012-03-11 21:13:48 | 000,097,760 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\inspect.sys -- (Inspect)
DRV - [2012-03-11 21:13:46 | 000,494,968 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard)
DRV - [2012-03-11 21:13:46 | 000,031,704 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2012-03-11 21:13:44 | 000,018,056 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmderd.sys -- (cmderd)
DRV - [2011-03-15 17:18:14 | 001,511,936 | R--- | M] (C-Media Electronics Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CM108.sys -- (USBPNPA)
DRV - [2009-07-05 02:19:05 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112)
DRV - [2008-03-05 11:46:02 | 000,491,648 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt61.sys -- (RT61)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
 
 
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-05-01 12:30:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
 
[2012-05-01 12:50:59 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Extensions
[2012-05-01 12:30:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-05-01 12:30:14 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-04-21 04:18:44 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-04-21 04:18:44 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-04-21 04:18:44 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-04-21 04:18:44 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-04-21 04:18:44 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-04-21 04:18:44 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O4 - HKLM..\Run: [Cm108Sound] RunDll32 cm108.cpl,CMICtrlWnd File not found
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKU\.DEFAULT..\Run: [TransBar] C:\WINDOWS\TransBar.exe (AKSoftware)
O4 - HKU\S-1-5-18..\Run: [TransBar] C:\WINDOWS\TransBar.exe (AKSoftware)
O4 - HKU\S-1-5-20..\Run: [TransBar] C:\WINDOWS\TransBar.exe (AKSoftware)
O4 - HKLM..\RunOnce: [DelAegisInst] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
O4 - HKLM..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\AutorunsDisabled [2012-05-01 13:26:05 | 000,000,000 | -H-D | M]
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C5F1AF5A-1AD6-48C9-B786-E7DB8B902090}: DhcpNameServer = 192.168.1.100
O20 - AppInit_DLLs: (C:\WINDOWS\system32\guard32.dll) - C:\WINDOWS\system32\guard32.dll (COMODO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012-05-01 12:03:55 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-05-01 13:51:44 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2012-05-01 13:51:43 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2012-05-01 13:51:42 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2012-05-01 13:51:40 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2012-05-01 13:50:58 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2012-05-01 13:50:02 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2012-05-01 13:49:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Muzyka
[2012-05-01 13:48:48 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2012-05-01 13:48:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2012-05-01 13:48:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2012-05-01 13:48:37 | 000,000,000 | R--D | C] -- C:\Program Files
[2012-05-01 13:48:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2012-05-01 13:48:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2012-05-01 13:48:35 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2012-05-01 13:48:35 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2012-05-01 13:48:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2012-05-01 13:48:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2012-05-01 13:48:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2012-05-01 13:48:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2012-05-01 13:48:31 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2012-05-01 13:48:31 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2012-05-01 13:48:31 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2012-05-01 13:48:31 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2012-05-01 13:48:31 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2012-05-01 13:48:31 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2012-05-01 13:48:31 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2012-05-01 13:48:30 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2012-05-01 13:48:30 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2012-05-01 13:48:30 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2012-05-01 13:48:30 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2012-05-01 13:48:29 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2012-05-01 13:48:18 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2012-05-01 13:48:18 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2012-05-01 13:48:18 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2012-05-01 13:48:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2012-05-01 13:48:16 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2012-05-01 13:48:15 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2012-05-01 13:48:15 | 000,085,532 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2012-05-01 13:48:14 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2012-05-01 13:48:14 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2012-05-01 13:48:13 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2012-05-01 13:48:13 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2012-05-01 13:48:12 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2012-05-01 13:48:12 | 000,009,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2012-05-01 13:48:12 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2012-05-01 13:48:12 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2012-05-01 13:48:12 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2012-05-01 13:48:12 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2012-05-01 13:48:11 | 000,127,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2012-05-01 13:48:11 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2012-05-01 13:48:11 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2012-05-01 13:48:10 | 000,073,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2012-05-01 13:48:10 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2012-05-01 13:48:10 | 000,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2012-05-01 13:48:10 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2012-05-01 13:48:10 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2012-05-01 13:48:09 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2012-05-01 13:48:09 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2012-05-01 13:48:08 | 000,109,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2012-05-01 13:48:08 | 000,070,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2012-05-01 13:48:08 | 000,033,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2012-05-01 13:48:07 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2012-05-01 13:48:05 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2012-05-01 13:48:04 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV
[2012-05-01 13:48:03 | 000,069,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2012-05-01 13:48:02 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2012-05-01 13:47:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start
[2012-05-01 13:47:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2012-05-01 13:47:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
[2012-05-01 13:47:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony
[2012-05-01 13:47:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione
[2012-05-01 13:47:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2012-05-01 13:47:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2012-05-01 13:47:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2012-05-01 13:47:17 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2012-05-01 13:47:17 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji
[2012-05-01 13:46:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2012-05-01 13:46:45 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012-05-01 13:31:21 | 000,000,000 | --SD | C] -- C:\WINDOWS\Offline Web Pages
[2012-05-01 13:31:21 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2012-05-01 13:31:21 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2012-05-01 13:31:21 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2012-05-01 13:31:21 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\NLDRV
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2012-05-01 13:26:05 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\AutorunsDisabled
[2012-05-01 13:24:30 | 000,000,000 | ---D | C] -- C:\Program Files\Autoruns
[2012-05-01 13:18:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\Free Registry Cleaner
[2012-05-01 13:18:38 | 000,000,000 | ---D | C] -- C:\Program Files\Eusing Free Registry Cleaner
[2012-05-01 13:15:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Malwarebytes
[2012-05-01 13:15:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware
[2012-05-01 13:15:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2012-05-01 13:15:13 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012-05-01 13:15:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012-05-01 13:11:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\EurekaLog
[2012-05-01 12:59:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Macromedia
[2012-05-01 12:57:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Adobe
[2012-05-01 12:56:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\WapSter
[2012-05-01 12:56:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Notepad++
[2012-05-01 12:56:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\Notepad++
[2012-05-01 12:56:06 | 000,000,000 | ---D | C] -- C:\Program Files\Notepad++
[2012-05-01 12:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Notepad++
[2012-05-01 12:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\WapSter
[2012-05-01 12:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\WapSter
[2012-05-01 12:52:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\Revo Uninstaller
[2012-05-01 12:52:13 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2012-05-01 12:51:54 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012-05-01 12:51:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\Pobieranie
[2012-05-01 12:50:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Mozilla
[2012-05-01 12:50:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla
[2012-05-01 12:41:16 | 000,491,648 | ---- | C] (Ralink Technology, Corp.) -- C:\WINDOWS\System32\drivers\rt61.sys
[2012-05-01 12:41:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2012-05-01 12:41:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Edimax Wireless
[2012-05-01 12:41:11 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2012-05-01 12:41:11 | 000,000,000 | ---D | C] -- C:\Program Files\EDIMAX
[2012-05-01 12:41:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\InstallShield
[2012-05-01 12:40:14 | 008,146,944 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\System\CM108.cpl
[2012-05-01 12:40:14 | 000,294,912 | R--- | C] (C-Media) -- C:\WINDOWS\System32\CM108rm.exe
[2012-05-01 12:39:49 | 001,511,936 | R--- | C] (C-Media Electronics Inc) -- C:\WINDOWS\System32\drivers\CM108.sys
[2012-05-01 12:39:49 | 000,315,392 | R--- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\fltr108.dll
[2012-05-01 12:39:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2012-05-01 12:39:31 | 000,307,200 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\Cmi108Uninstall.exe
[2012-05-01 12:39:14 | 000,000,000 | ---D | C] -- C:\Program Files\USB PnP Sound Device
[2012-05-01 12:39:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2012-05-01 12:36:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\AIMP
[2012-05-01 12:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AIMP2
[2012-05-01 12:36:17 | 000,000,000 | ---D | C] -- C:\Program Files\AIMP2
[2012-05-01 12:36:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\WinRAR
[2012-05-01 12:32:48 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Admin\Recent
[2012-05-01 12:30:15 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012-05-01 12:30:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla
[2012-05-01 12:30:10 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012-05-01 12:28:26 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Admin\IETldCache
[2012-05-01 12:28:20 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Moje dokumenty\Muzyka
[2012-05-01 12:28:20 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Moje dokumenty\Moje obrazy
[2012-05-01 12:28:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Microsoft
[2012-05-01 12:28:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Admin\Dane aplikacji
[2012-05-01 12:28:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Admin\Cookies
[2012-05-01 12:28:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Sun
[2012-05-01 12:28:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Foxit
[2012-05-01 12:28:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Ulubione
[2012-05-01 12:28:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Moje dokumenty
[2012-05-01 12:28:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-05-01 12:28:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Admin\SendTo
[2012-05-01 12:28:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Admin\Menu Start
[2012-05-01 12:28:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\Autostart
[2012-05-01 12:28:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\Akcesoria
[2012-05-01 12:28:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Admin\Ustawienia lokalne
[2012-05-01 12:28:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Admin\Szablony
[2012-05-01 12:28:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Admin\PrintHood
[2012-05-01 12:28:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Admin\NetHood
[2012-05-01 12:28:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\WinRAR
[2012-05-01 12:28:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\RarSFX0
[2012-05-01 12:28:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Pulpit
[2012-05-01 12:26:45 | 000,000,000 | -H-D | C] -- C:\VritualRoot
[2012-05-01 12:23:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\COMODO
[2012-05-01 12:23:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Comodo
[2012-05-01 12:23:10 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2012-05-01 12:21:26 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012-05-01 12:17:59 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2012-05-01 12:17:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012-05-01 12:17:19 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-05-01 12:17:19 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2012-05-01 12:10:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-05-01 12:10:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2012-05-01 12:10:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2012-05-01 12:10:32 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2012-05-01 12:10:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2012-05-01 12:10:25 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2012-05-01 12:07:11 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2012-05-01 12:07:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2012-05-01 12:07:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp
[2012-05-01 12:07:00 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2012-05-01 12:07:00 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2012-05-01 12:07:00 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2012-05-01 12:06:47 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2012-05-01 12:06:36 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2012-05-01 12:06:35 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2012-05-01 12:05:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR
[2012-05-01 12:05:54 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2012-05-01 12:05:52 | 000,065,536 | ---- | C] (AKSoftware) -- C:\WINDOWS\TransBar.exe
[2012-05-01 12:05:28 | 000,026,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2012-05-01 12:05:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[2012-05-01 12:05:18 | 000,000,000 | ---D | C] -- C:\Program Files\Alky for Applications
[2012-05-01 12:04:59 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2012-05-01 12:04:55 | 000,410,984 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2012-05-01 12:04:55 | 000,148,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2012-05-01 12:04:55 | 000,144,792 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2012-05-01 12:04:55 | 000,144,792 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2012-05-01 12:04:55 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2012-05-01 12:04:42 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012-05-01 12:04:28 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Software
[2012-05-01 12:04:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2012-05-01 12:04:04 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\nircmd.exe
[2012-05-01 12:03:23 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2012-05-01 12:03:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache
[2012-05-01 12:02:40 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2012-05-01 12:02:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Obrazy
[2012-05-01 12:02:17 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online
[2012-05-01 12:01:41 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2012-05-01 12:01:22 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2012-05-01 12:01:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2012-05-01 12:01:12 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2012-05-01 12:01:12 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2012-05-01 12:01:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2012-05-01 12:00:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2012-05-01 12:00:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2012-05-01 12:00:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2012-05-01 12:00:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2012-05-01 12:00:45 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2012-05-01 12:00:32 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2012-05-01 12:00:30 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2012-05-01 12:00:30 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2012-05-01 12:00:30 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2012-05-01 12:00:30 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2012-05-01 12:00:17 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe
[2012-05-01 12:00:15 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2012-05-01 12:00:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2012-05-01 12:00:13 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2012-05-01 12:00:13 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2012-05-01 12:00:08 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2012-05-01 12:00:00 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2012-05-01 12:00:00 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2012-05-01 11:59:57 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2012-05-01 11:59:57 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2012-05-01 11:59:57 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2012-05-01 11:59:57 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2012-05-01 11:59:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2012-05-01 11:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2012-05-01 11:59:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gry
[2012-05-01 11:58:57 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2012-05-01 11:58:51 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Narzędzia administracyjne
[2012-05-01 11:58:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2012-05-01 11:57:15 | 000,000,000 | ---D | C] -- C:\Program Files\VistaExperience.org
[2012-05-01 11:55:42 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2012-05-01 11:55:37 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2012-05-01 11:55:36 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2012-05-01 11:55:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2012-05-01 11:55:33 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2012-05-01 11:55:32 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2012-05-01 11:55:31 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2012-05-01 11:55:31 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2012-05-01 11:55:31 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2012-05-01 11:55:29 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2012-05-01 11:55:24 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2012-05-01 11:55:23 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2012-05-01 11:55:22 | 000,253,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2012-05-01 11:55:21 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2012-05-01 11:55:20 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2012-05-01 11:55:20 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2012-05-01 11:55:19 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2012-05-01 11:55:18 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2012-05-01 11:55:18 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2012-05-01 11:55:18 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2012-05-01 11:55:17 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2012-05-01 11:55:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2012-05-01 11:55:17 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2012-05-01 11:55:17 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2012-05-01 11:55:17 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2012-05-01 11:55:16 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2012-05-01 11:55:16 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2012-05-01 11:55:16 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2012-05-01 11:55:16 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2012-05-01 11:55:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2012-05-01 11:55:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2012-05-01 11:54:55 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2012-05-01 11:54:55 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2012-05-01 11:54:54 | 000,591,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2012-05-01 11:54:54 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2012-05-01 11:54:53 | 000,351,744 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2012-05-01 11:54:51 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2012-05-01 11:54:51 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2012-05-01 11:54:50 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2012-05-01 11:54:48 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2012-05-01 11:54:45 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2012-05-01 11:54:45 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2012-05-01 11:54:44 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2012-05-01 11:54:43 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2012-05-01 11:54:39 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2012-05-01 11:54:39 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2012-05-01 11:54:39 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2012-05-01 11:54:38 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2012-05-01 11:54:37 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2012-05-01 11:54:37 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2012-05-01 11:54:37 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2012-05-01 11:54:36 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2012-05-01 11:54:35 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2012-05-01 11:54:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2012-05-01 11:54:34 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2012-05-01 11:54:34 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2012-05-01 11:54:33 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2012-05-01 11:54:33 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2012-05-01 11:54:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2012-05-01 11:54:29 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2012-05-01 11:54:29 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2012-05-01 11:54:29 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2012-05-01 11:54:26 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2012-05-01 11:54:26 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2012-05-01 11:54:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2012-05-01 11:54:25 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2012-05-01 11:54:24 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2012-05-01 11:54:24 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2012-05-01 11:54:21 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2012-05-01 11:54:21 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2012-05-01 11:54:08 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2012-05-01 11:54:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2012-05-01 11:54:07 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2012-05-01 11:54:06 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2012-05-01 11:53:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Akcesoria
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-05-01 13:48:53 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2012-05-01 13:30:11 | 000,185,552 | ---- | M] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2012-05-01 13:24:49 | 000,000,688 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Autoruns.lnk
[2012-05-01 13:20:01 | 000,000,688 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\CCleaner.lnk
[2012-05-01 13:18:47 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Eusing Free Registry Cleaner.lnk
[2012-05-01 13:15:16 | 000,000,790 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes Anti-Malware.lnk
[2012-05-01 13:12:24 | 000,000,515 | ---- | M] () -- C:\WINDOWS\System\Cm108.ini
[2012-05-01 13:10:18 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-05-01 13:10:14 | 804,114,432 | -HS- | M] () -- C:\hiberfil.sys
[2012-05-01 13:00:08 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Notepad++.lnk
[2012-05-01 12:56:01 | 000,000,591 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\AQQ.lnk
[2012-05-01 12:52:14 | 000,000,923 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Revo Uninstaller.lnk
[2012-05-01 12:43:02 | 000,497,586 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2012-05-01 12:43:02 | 000,438,750 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012-05-01 12:43:02 | 000,087,244 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2012-05-01 12:43:01 | 000,069,926 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012-05-01 12:41:38 | 000,376,832 | ---- | M] () -- C:\WINDOWS\System32\AegisI5Installer.exe
[2012-05-01 12:40:14 | 000,000,062 | ---- | M] () -- C:\WINDOWS\Cm108.ini.cfl
[2012-05-01 12:36:19 | 000,000,644 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AIMP2.lnk
[2012-05-01 12:34:17 | 000,000,047 | ---- | M] () -- C:\WINDOWS\TransBar.ini
[2012-05-01 12:30:15 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2012-05-01 12:17:22 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-05-01 12:17:11 | 000,107,808 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-05-01 12:16:07 | 000,001,195 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2012-05-01 12:04:45 | 000,410,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2012-05-01 12:04:45 | 000,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2012-05-01 12:04:45 | 000,144,792 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2012-05-01 12:04:45 | 000,144,792 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2012-05-01 12:04:45 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2012-05-01 12:03:55 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012-05-01 12:03:55 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2012-05-01 12:03:55 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012-05-01 12:03:55 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2012-05-01 12:03:55 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2012-05-01 12:03:45 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2012-05-01 12:03:45 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2012-05-01 12:03:43 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012-05-01 12:03:24 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2012-05-01 11:59:03 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012-05-01 11:53:24 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2012-04-04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-05-01 13:48:53 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2012-05-01 13:48:48 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012-05-01 13:48:06 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2012-05-01 13:48:02 | 000,283,648 | ---- | C] () -- C:\WINDOWS\NOTEPAD.EXE
[2012-05-01 13:46:45 | 000,107,808 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-05-01 13:45:53 | 000,000,211 | -HS- | C] () -- C:\boot.ini
[2012-05-01 13:45:51 | 000,001,195 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2012-05-01 13:24:49 | 000,000,688 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Autoruns.lnk
[2012-05-01 13:20:01 | 000,000,688 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\CCleaner.lnk
[2012-05-01 13:18:47 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Eusing Free Registry Cleaner.lnk
[2012-05-01 13:15:16 | 000,000,790 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes Anti-Malware.lnk
[2012-05-01 12:56:14 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Notepad++.lnk
[2012-05-01 12:56:01 | 000,000,591 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\AQQ.lnk
[2012-05-01 12:52:14 | 000,000,923 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Revo Uninstaller.lnk
[2012-05-01 12:41:37 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\AegisI5Installer.exe
[2012-05-01 12:41:15 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\rt2661.bin
[2012-05-01 12:41:15 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\rt2561s.bin
[2012-05-01 12:41:15 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\rt2561.bin
[2012-05-01 12:40:14 | 000,000,515 | ---- | C] () -- C:\WINDOWS\System\Cm108.ini
[2012-05-01 12:40:14 | 000,000,062 | ---- | C] () -- C:\WINDOWS\Cm108.ini.cfl
[2012-05-01 12:39:33 | 000,000,939 | R--- | C] () -- C:\WINDOWS\Cm108.ini.cfg
[2012-05-01 12:39:21 | 000,001,316 | R--- | C] () -- C:\WINDOWS\cm108.ini
[2012-05-01 12:36:19 | 000,000,644 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AIMP2.lnk
[2012-05-01 12:30:15 | 000,000,736 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
[2012-05-01 12:30:15 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2012-05-01 12:28:29 | 000,000,809 | ---- | C] () -- C:\Documents and Settings\Admin\Menu Start\Programy\Internet Explorer.lnk
[2012-05-01 12:28:25 | 000,000,744 | ---- | C] () -- C:\Documents and Settings\Admin\Menu Start\Programy\Outlook Express.lnk
[2012-05-01 12:28:15 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Admin\Menu Start\Programy\Pomoc zdalna.lnk
[2012-05-01 12:28:15 | 000,000,794 | ---- | C] () -- C:\Documents and Settings\Admin\Menu Start\Programy\Windows Media Player.lnk
[2012-05-01 12:25:41 | 000,185,552 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2012-05-01 12:17:21 | 804,114,432 | -HS- | C] () -- C:\hiberfil.sys
[2012-05-01 12:15:55 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012-05-01 12:10:55 | 000,002,272 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2012-05-01 12:05:52 | 000,000,047 | ---- | C] () -- C:\WINDOWS\TransBar.ini
[2012-05-01 12:04:04 | 000,652,287 | ---- | C] () -- C:\WINDOWS\Nowe_konto.exe
[2012-05-01 12:03:55 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2012-05-01 12:03:55 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2012-05-01 12:03:55 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2012-05-01 12:03:55 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2012-05-01 12:03:55 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2012-05-01 12:03:45 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2012-05-01 12:03:45 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2012-05-01 12:03:43 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2012-05-01 12:02:19 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Movie Maker.lnk
[2012-05-01 11:59:03 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012-05-01 11:55:18 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2012-05-01 11:55:18 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2012-05-01 11:55:14 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2012-05-01 11:54:58 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-05-01 13:37:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\AIMP
[2012-05-01 13:11:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\EurekaLog
[2012-05-01 12:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Foxit
[2012-05-01 13:00:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Notepad++
[2012-05-01 12:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Foxit
[2012-05-01 12:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\Foxit
[2012-05-01 12:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukasz\Dane aplikacji\Foxit
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >


Extras.txt :

Kod: Zaznacz cały

OTL Extras logfile created on: 2012-05-01 13:31:21 - Run 1
OTL by OldTimer - Version 3.2.42.2     Folder = F:\Instalatory Programów
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
766,80 Mb Total Physical Memory | 518,29 Mb Available Physical Memory | 67,59% Memory free
1,83 Gb Paging File | 1,52 Gb Available in Paging File | 82,68% Paging File free
Paging file location(s): C:\pagefile.sys 1152 2304 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 24,94 Gb Free Space | 85,13% Space Free | Partition Type: NTFS
Drive D: | 39,06 Gb Total Space | 4,35 Gb Free Space | 11,14% Space Free | Partition Type: NTFS
Drive E: | 11,64 Gb Total Space | 11,58 Gb Free Space | 99,48% Space Free | Partition Type: NTFS
Drive F: | 39,07 Gb Total Space | 12,55 Gb Free Space | 32,11% Space Free | Partition Type: NTFS
Drive G: | 29,98 Gb Total Space | 9,36 Gb Free Space | 31,23% Space Free | Partition Type: NTFS
 
Computer Name: PC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.inf [@ = inffile] -- C:\WINDOWS\System32\NOTEPAD.EXE ()
.ini [@ = inifile] -- C:\WINDOWS\System32\NOTEPAD.EXE ()
.txt [@ = txtfile] -- C:\WINDOWS\System32\NOTEPAD.EXE ()
 
[HKEY_USERS\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
batfile [open] -- "%1" %*
batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
cmdfile [open] -- "%1" %*
cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
inffile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
inifile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 ()
inifile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 ()
jsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
jsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
jsefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
jsefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
piffile [open] -- "%1" %*
regfile [edit] -- %SystemRoot%\system32\NOTEPAD.EXE %1 ()
regfile [merge] -- Reg Error: Key error.
regfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 ()
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
txtfile [open] -- %SystemRoot%\system32\NOTEPAD.EXE %1 ()
txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 ()
txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" ()
vbefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
vbefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
vbsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
vbsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
wsffile [edit] -- %SystemRoot%\System32\Notepad.exe %1 ()
wsffile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 ()
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /k cd "%L" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[color=#E56717]========== System Restore Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 14
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{90120000-008A-0409-0000-0000000FF1CE}" = Microsoft Office 2007 Recent Documents Gadget
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{BB05D173-9681-4812-A7FA-BD4042A3DA00}" = Alky for Applications (Windows XP)
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}" = COMODO Internet Security
"{FAB1F336-1B7C-4057-A7BC-2922CD82A781}" = Edimax Wireless LAN
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AIMP2" = AIMP2
"AQQ" = WapSter AQQ
"CCleaner" = CCleaner
"Eusing Free Registry Cleaner" = Eusing Free Registry Cleaner
"Foxit Reader" = Foxit Reader
"Generic USB 108 Sound" = USB PnP Sound Device
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.61.0.1400
"Microsoft .NET Framework 1.1  (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 12.0 (x86 pl)" = Mozilla Firefox 12.0 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"Notepad++" = Notepad++
"Revo Uninstaller" = Revo Uninstaller 1.93
"WinRAR archiver" = Archiwizator WinRAR
 
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 2012-05-01 06:04:58 | Computer Name = PC | Source = PerfNet | ID = 2004
Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie
 zostaną  zwrócone. Zwrócony kod stanu to dane DWORD 0.
 
Error - 2012-05-01 06:10:50 | Computer Name = PC | Source = MsiInstaller | ID = 10005
Description = Produkt: Microsoft .NET Framework 3.0 Service Pack 2 -- Błąd 2004.
 Method SHGetFolderPath failed.  HRESULT: 0x80004005.
 
Error - 2012-05-01 06:10:50 | Computer Name = PC | Source = MsiInstaller | ID = 10005
Description = Produkt: Microsoft .NET Framework 3.0 Service Pack 2 -- Błąd 2004.
 Method GetFontCacheDataFolder failed.  HRESULT: 0x80004005.
 
[ System Events ]
Error - 2012-05-01 06:16:07 | Computer Name = PC | Source = Setup | ID = 60055
Description = Instalator systemu Windows napotkał niekrytyczne błędy podczas instalacji.
 Sprawdź plik setuperr.log znajdujący się w katalogu Windows, aby uzyskać więcej
 informacj
 
Error - 2012-05-01 06:18:59 | Computer Name = PC | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu
 następującego błędu:   %%2
 
Error - 2012-05-01 06:27:29 | Computer Name = PC | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu
 następującego błędu:   %%2
 
Error - 2012-05-01 06:37:49 | Computer Name = PC | Source = atapi | ID = 262153
Description = Urządzenie \Device\Ide\IdePort1 nie odpowiedziało w ramach ustalonego
 limitu czasu.
 
Error - 2012-05-01 06:37:59 | Computer Name = PC | Source = atapi | ID = 262153
Description = Urządzenie \Device\Ide\IdePort1 nie odpowiedziało w ramach ustalonego
 limitu czasu.
 
Error - 2012-05-01 06:38:09 | Computer Name = PC | Source = atapi | ID = 262153
Description = Urządzenie \Device\Ide\IdePort1 nie odpowiedziało w ramach ustalonego
 limitu czasu.
 
Error - 2012-05-01 06:38:19 | Computer Name = PC | Source = atapi | ID = 262153
Description = Urządzenie \Device\Ide\IdePort1 nie odpowiedziało w ramach ustalonego
 limitu czasu.
 
Error - 2012-05-01 06:38:29 | Computer Name = PC | Source = atapi | ID = 262153
Description = Urządzenie \Device\Ide\IdePort1 nie odpowiedziało w ramach ustalonego
 limitu czasu.
 
Error - 2012-05-01 06:38:29 | Computer Name = PC | Source = atapi | ID = 262155
Description = Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort1.
 
Error - 2012-05-01 07:11:26 | Computer Name = PC | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi Usługa bramy warstwy aplikacji z powodu
 następującego błędu:   %%2
 
 
< End of report >
Ostatnio zmieniony 01 maja 2012, 13:53 przez XMan, łącznie zmieniany 1 raz.
Powód: przeniosłem z działu Problemy --> Bezpieczeństwo
Na górę
Awatar użytkownika
kominekl

Ekspert
Posty: 5855
Rejestracja: 27 lis 2011, 14:25
Kontaktowanie:
Skontaktuj się z kominekl

Log z OTL

Post01 maja 2012, 14:08

SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\alg.exe -- (ALG)


Uruchom Konsolę Odzyskiwania -> Dostępne tylko dla zarejestrowanych użytkowników i wprowadź w Niej polecenie -> CHKDSK /R.

Logi.


Uruchom OTL -> w oknie Własne opcje skanowania/skrypt wklej:

:OTL

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = Dostępne tylko dla zarejestrowanych użytkowników{searchTerms}&src={referrer:source?}
O4 - HKLM..\Run: [Cm108Sound] RunDll32 cm108.cpl,CMICtrlWnd File not found
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\AutorunsDisabled [2012-05-01 13:26:05 | 000,000,000 | -H-D | M]

:Files
C:\Documents and Settings\Admin\Dane aplikacji\EurekaLog

:Reg
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"DelAegisInst"=-
"Malwarebytes Anti-Malware"=-

:Commands
[emptyflash]
[clearallrestorepoints]
[emptytemp]


Klikasz Wykonaj skrypt. Dajesz log z usuwania. Następnie podajesz nowe logi z OTL.
Kiedy komputery staną się twoim jedynym życiem, jedynym totemem odstraszającym klątwę nudy, wtedy prędzej czy później granica między tymi dwoma wymiarami zniknie i postacie z Błękitnej Pustki zaczną pojawiać się w Realu. Czasem są twoimi przyjaciółmi. A czasem nie.
Na górę
Maniek13

Użytkownik
Posty: 141
Rejestracja: 21 kwie 2012, 16:22

Log z OTL

Post01 maja 2012, 15:50

Log z usuwania :

Kod: Zaznacz cały

All processes killed
========== OTL ==========
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Cm108Sound deleted successfully.
C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\AutorunsDisabled folder moved successfully.
========== FILES ==========
C:\Documents and Settings\Admin\Dane aplikacji\EurekaLog folder moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\DelAegisInst not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Malwarebytes Anti-Malware not found.
========== COMMANDS ==========
 
[EMPTYFLASH]
 
User: Admin
->Flash cache emptied: 419 bytes
 
User: Administrator
 
User: All Users
 
User: Default User
 
User: LocalService
 
User: Lukasz
 
User: NetworkService
 
Total Flash Files Cleaned = 0,00 mb
 
Restore point Set: OTL Restore Point
 
[EMPTYTEMP]
 
User: Admin
->Temp folder emptied: 16651174 bytes
->Temporary Internet Files folder emptied: 81174 bytes
->FireFox cache emptied: 24176300 bytes
->Flash cache emptied: 0 bytes
 
User: Administrator
->Temp folder emptied: 123190219 bytes
->Temporary Internet Files folder emptied: 114452 bytes
 
User: All Users
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: LocalService
->Temporary Internet Files folder emptied: 33170 bytes
 
User: Lukasz
->Temp folder emptied: 123 bytes
->Temporary Internet Files folder emptied: 129651 bytes
 
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 2596 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 54241 bytes
RecycleBin emptied: 145224 bytes
 
Total Files Cleaned = 157,00 mb
 
 
OTL by OldTimer - Version 3.2.42.2 log created on 05012012_153848

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...


OTL.txt :

Kod: Zaznacz cały

OTL logfile created on: 2012-05-01 15:43:52 - Run 2
OTL by OldTimer - Version 3.2.42.2     Folder = F:\Instalatory Programów
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
766,80 Mb Total Physical Memory | 503,98 Mb Available Physical Memory | 65,73% Memory free
1,83 Gb Paging File | 1,55 Gb Available in Paging File | 84,47% Paging File free
Paging file location(s): C:\pagefile.sys 1152 2304 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29,29 Gb Total Space | 25,27 Gb Free Space | 86,25% Space Free | Partition Type: NTFS
Drive D: | 39,06 Gb Total Space | 4,35 Gb Free Space | 11,14% Space Free | Partition Type: NTFS
Drive E: | 11,64 Gb Total Space | 11,58 Gb Free Space | 99,48% Space Free | Partition Type: NTFS
Drive F: | 39,07 Gb Total Space | 12,55 Gb Free Space | 32,11% Space Free | Partition Type: NTFS
Drive G: | 29,98 Gb Total Space | 9,36 Gb Free Space | 31,23% Space Free | Partition Type: NTFS
 
Computer Name: PC | User Name: Admin | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012-05-01 12:30:10 | 000,924,600 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012-04-29 21:37:20 | 000,595,456 | ---- | M] (OldTimer Tools) -- F:\Instalatory Programów\OTL.exe
PRC - [2012-03-11 21:13:22 | 001,983,232 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
PRC - [2012-03-11 21:13:02 | 006,749,512 | ---- | M] (COMODO) -- C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
PRC - [2009-06-27 17:16:26 | 003,642,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012-05-01 12:30:10 | 001,952,696 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011-12-19 18:59:44 | 000,068,424 | ---- | M] () -- C:\Program Files\COMODO\COMODO Internet Security\scanners\smart.cav
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2012-03-11 21:13:22 | 001,983,232 | ---- | M] (COMODO) [Auto | Running] -- C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe -- (cmdAgent)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2012-03-11 21:13:48 | 000,097,760 | ---- | M] (COMODO) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\inspect.sys -- (Inspect)
DRV - [2012-03-11 21:13:46 | 000,494,968 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmdGuard.sys -- (cmdGuard)
DRV - [2012-03-11 21:13:46 | 000,031,704 | ---- | M] (COMODO) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\cmdhlp.sys -- (cmdHlp)
DRV - [2012-03-11 21:13:44 | 000,018,056 | ---- | M] (COMODO) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\cmderd.sys -- (cmderd)
DRV - [2011-03-15 17:18:14 | 001,511,936 | R--- | M] (C-Media Electronics Inc) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CM108.sys -- (USBPNPA)
DRV - [2009-07-05 02:19:05 | 000,062,208 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112)
DRV - [2008-03-05 11:46:02 | 000,491,648 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt61.sys -- (RT61)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\..\SearchScopes,DefaultScope =
 
 
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 12.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-05-01 12:30:14 | 000,000,000 | ---D | M]
 
[2012-05-01 12:50:59 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla\Extensions
[2012-05-01 12:30:14 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-05-01 12:30:14 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-04-21 04:18:44 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-04-21 04:18:44 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-04-21 04:18:44 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-04-21 04:18:44 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-04-21 04:18:44 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-04-21 04:18:44 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml
 
O1 HOSTS File: ([2001-10-26 19:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O4 - HKLM..\Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cfp.exe (COMODO)
O4 - HKU\.DEFAULT..\Run: [TransBar] C:\WINDOWS\TransBar.exe (AKSoftware)
O4 - HKU\S-1-5-18..\Run: [TransBar] C:\WINDOWS\TransBar.exe (AKSoftware)
O4 - HKU\S-1-5-20..\Run: [TransBar] C:\WINDOWS\TransBar.exe (AKSoftware)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDesktopCleanupWizard = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoInternetOpenWith = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMMyPictures = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMConfigurePrograms = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-1606980848-1275210071-1547161642-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_14-windows-i586.cab (Java Plug-in 1.6.0_14)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C5F1AF5A-1AD6-48C9-B786-E7DB8B902090}: DhcpNameServer = 192.168.1.100
O20 - AppInit_DLLs: (C:\WINDOWS\system32\guard32.dll) - C:\WINDOWS\system32\guard32.dll (COMODO)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012-05-01 12:03:55 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012-05-01 15:16:56 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Admin\Recent
[2012-05-01 13:51:44 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2012-05-01 13:51:43 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2012-05-01 13:51:42 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2012-05-01 13:51:40 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2012-05-01 13:50:58 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2012-05-01 13:50:02 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2012-05-01 13:49:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Muzyka
[2012-05-01 13:48:48 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2012-05-01 13:48:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2012-05-01 13:48:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2012-05-01 13:48:37 | 000,000,000 | R--D | C] -- C:\Program Files
[2012-05-01 13:48:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2012-05-01 13:48:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2012-05-01 13:48:35 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2012-05-01 13:48:35 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2012-05-01 13:48:35 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2012-05-01 13:48:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2012-05-01 13:48:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2012-05-01 13:48:34 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2012-05-01 13:48:33 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2012-05-01 13:48:31 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2012-05-01 13:48:31 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2012-05-01 13:48:31 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2012-05-01 13:48:31 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2012-05-01 13:48:31 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2012-05-01 13:48:31 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2012-05-01 13:48:31 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2012-05-01 13:48:30 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2012-05-01 13:48:30 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2012-05-01 13:48:30 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2012-05-01 13:48:30 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2012-05-01 13:48:29 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2012-05-01 13:48:18 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2012-05-01 13:48:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2012-05-01 13:48:18 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2012-05-01 13:48:18 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2012-05-01 13:48:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2012-05-01 13:48:16 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2012-05-01 13:48:15 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2012-05-01 13:48:15 | 000,085,532 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2012-05-01 13:48:14 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2012-05-01 13:48:14 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2012-05-01 13:48:13 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2012-05-01 13:48:13 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2012-05-01 13:48:12 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2012-05-01 13:48:12 | 000,009,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2012-05-01 13:48:12 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2012-05-01 13:48:12 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2012-05-01 13:48:12 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2012-05-01 13:48:12 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2012-05-01 13:48:11 | 000,127,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2012-05-01 13:48:11 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2012-05-01 13:48:11 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2012-05-01 13:48:10 | 000,073,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2012-05-01 13:48:10 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2012-05-01 13:48:10 | 000,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2012-05-01 13:48:10 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2012-05-01 13:48:10 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2012-05-01 13:48:09 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2012-05-01 13:48:09 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2012-05-01 13:48:08 | 000,109,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2012-05-01 13:48:08 | 000,070,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2012-05-01 13:48:08 | 000,033,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2012-05-01 13:48:07 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2012-05-01 13:48:05 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2012-05-01 13:48:04 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV
[2012-05-01 13:48:03 | 000,069,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2012-05-01 13:48:02 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2012-05-01 13:47:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start
[2012-05-01 13:47:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2012-05-01 13:47:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
[2012-05-01 13:47:49 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony
[2012-05-01 13:47:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione
[2012-05-01 13:47:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2012-05-01 13:47:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2012-05-01 13:47:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2012-05-01 13:47:17 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2012-05-01 13:47:17 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji
[2012-05-01 13:46:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2012-05-01 13:46:45 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012-05-01 13:31:21 | 000,000,000 | --SD | C] -- C:\WINDOWS\Offline Web Pages
[2012-05-01 13:31:21 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2012-05-01 13:31:21 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2012-05-01 13:31:21 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2012-05-01 13:31:21 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\NLDRV
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2012-05-01 13:31:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2012-05-01 13:24:30 | 000,000,000 | ---D | C] -- C:\Program Files\Autoruns
[2012-05-01 13:18:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\Free Registry Cleaner
[2012-05-01 13:18:38 | 000,000,000 | ---D | C] -- C:\Program Files\Eusing Free Registry Cleaner
[2012-05-01 13:15:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Malwarebytes
[2012-05-01 13:15:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Malwarebytes' Anti-Malware
[2012-05-01 13:15:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes
[2012-05-01 13:15:13 | 000,022,344 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2012-05-01 13:15:13 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012-05-01 12:59:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Macromedia
[2012-05-01 12:57:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Adobe
[2012-05-01 12:56:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\WapSter
[2012-05-01 12:56:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Notepad++
[2012-05-01 12:56:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\Notepad++
[2012-05-01 12:56:06 | 000,000,000 | ---D | C] -- C:\Program Files\Notepad++
[2012-05-01 12:56:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Notepad++
[2012-05-01 12:56:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\WapSter
[2012-05-01 12:55:38 | 000,000,000 | ---D | C] -- C:\Program Files\WapSter
[2012-05-01 12:52:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\Revo Uninstaller
[2012-05-01 12:52:13 | 000,000,000 | ---D | C] -- C:\Program Files\VS Revo Group
[2012-05-01 12:51:54 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012-05-01 12:51:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Moje dokumenty\Pobieranie
[2012-05-01 12:50:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Mozilla
[2012-05-01 12:50:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Mozilla
[2012-05-01 12:41:16 | 000,491,648 | ---- | C] (Ralink Technology, Corp.) -- C:\WINDOWS\System32\drivers\rt61.sys
[2012-05-01 12:41:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2012-05-01 12:41:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Edimax Wireless
[2012-05-01 12:41:11 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2012-05-01 12:41:11 | 000,000,000 | ---D | C] -- C:\Program Files\EDIMAX
[2012-05-01 12:41:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\InstallShield
[2012-05-01 12:40:14 | 008,146,944 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\System\CM108.cpl
[2012-05-01 12:40:14 | 000,294,912 | R--- | C] (C-Media) -- C:\WINDOWS\System32\CM108rm.exe
[2012-05-01 12:39:49 | 001,511,936 | R--- | C] (C-Media Electronics Inc) -- C:\WINDOWS\System32\drivers\CM108.sys
[2012-05-01 12:39:49 | 000,315,392 | R--- | C] (C-Media Electronics Inc.) -- C:\WINDOWS\System\fltr108.dll
[2012-05-01 12:39:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2012-05-01 12:39:31 | 000,307,200 | R--- | C] (C-Media Corporation) -- C:\WINDOWS\Cmi108Uninstall.exe
[2012-05-01 12:39:14 | 000,000,000 | ---D | C] -- C:\Program Files\USB PnP Sound Device
[2012-05-01 12:39:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2012-05-01 12:36:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\AIMP
[2012-05-01 12:36:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AIMP2
[2012-05-01 12:36:17 | 000,000,000 | ---D | C] -- C:\Program Files\AIMP2
[2012-05-01 12:36:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\WinRAR
[2012-05-01 12:30:15 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012-05-01 12:30:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla
[2012-05-01 12:30:10 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012-05-01 12:28:26 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Admin\IETldCache
[2012-05-01 12:28:20 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Moje dokumenty\Muzyka
[2012-05-01 12:28:20 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Moje dokumenty\Moje obrazy
[2012-05-01 12:28:15 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Microsoft
[2012-05-01 12:28:15 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Admin\Dane aplikacji
[2012-05-01 12:28:15 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Admin\Cookies
[2012-05-01 12:28:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Sun
[2012-05-01 12:28:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Dane aplikacji\Foxit
[2012-05-01 12:28:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Ulubione
[2012-05-01 12:28:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Moje dokumenty
[2012-05-01 12:28:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Admin\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-05-01 12:28:14 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Admin\SendTo
[2012-05-01 12:28:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Admin\Menu Start
[2012-05-01 12:28:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\Autostart
[2012-05-01 12:28:14 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\Akcesoria
[2012-05-01 12:28:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Admin\Ustawienia lokalne
[2012-05-01 12:28:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Admin\Szablony
[2012-05-01 12:28:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Admin\PrintHood
[2012-05-01 12:28:14 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Admin\NetHood
[2012-05-01 12:28:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Menu Start\Programy\WinRAR
[2012-05-01 12:28:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\RarSFX0
[2012-05-01 12:28:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Admin\Pulpit
[2012-05-01 12:26:45 | 000,000,000 | -H-D | C] -- C:\VritualRoot
[2012-05-01 12:23:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\COMODO
[2012-05-01 12:23:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Comodo
[2012-05-01 12:23:10 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2012-05-01 12:21:26 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012-05-01 12:17:59 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2012-05-01 12:17:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012-05-01 12:17:19 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-05-01 12:17:19 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2012-05-01 12:10:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-05-01 12:10:50 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2012-05-01 12:10:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2012-05-01 12:10:32 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2012-05-01 12:10:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2012-05-01 12:10:25 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2012-05-01 12:07:11 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2012-05-01 12:07:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2012-05-01 12:07:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp
[2012-05-01 12:07:00 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2012-05-01 12:07:00 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2012-05-01 12:07:00 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2012-05-01 12:06:47 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2012-05-01 12:06:36 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2012-05-01 12:06:35 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2012-05-01 12:05:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR
[2012-05-01 12:05:54 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2012-05-01 12:05:52 | 000,065,536 | ---- | C] (AKSoftware) -- C:\WINDOWS\TransBar.exe
[2012-05-01 12:05:28 | 000,026,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2012-05-01 12:05:27 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
[2012-05-01 12:05:18 | 000,000,000 | ---D | C] -- C:\Program Files\Alky for Applications
[2012-05-01 12:04:59 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2012-05-01 12:04:55 | 000,410,984 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2012-05-01 12:04:55 | 000,148,888 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2012-05-01 12:04:55 | 000,144,792 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2012-05-01 12:04:55 | 000,144,792 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2012-05-01 12:04:55 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2012-05-01 12:04:42 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012-05-01 12:04:28 | 000,000,000 | ---D | C] -- C:\Program Files\Foxit Software
[2012-05-01 12:04:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2012-05-01 12:04:04 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\nircmd.exe
[2012-05-01 12:03:23 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2012-05-01 12:03:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dllcache
[2012-05-01 12:02:40 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2012-05-01 12:02:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Obrazy
[2012-05-01 12:02:17 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online
[2012-05-01 12:01:41 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2012-05-01 12:01:22 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2012-05-01 12:01:20 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2012-05-01 12:01:12 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2012-05-01 12:01:12 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2012-05-01 12:01:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2012-05-01 12:00:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2012-05-01 12:00:46 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2012-05-01 12:00:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2012-05-01 12:00:46 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2012-05-01 12:00:45 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2012-05-01 12:00:32 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2012-05-01 12:00:30 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2012-05-01 12:00:30 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2012-05-01 12:00:30 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2012-05-01 12:00:30 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2012-05-01 12:00:17 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe
[2012-05-01 12:00:15 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2012-05-01 12:00:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2012-05-01 12:00:13 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2012-05-01 12:00:13 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2012-05-01 12:00:08 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2012-05-01 12:00:00 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2012-05-01 12:00:00 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2012-05-01 11:59:57 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2012-05-01 11:59:57 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2012-05-01 11:59:57 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2012-05-01 11:59:57 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2012-05-01 11:59:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2012-05-01 11:59:37 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2012-05-01 11:59:05 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gry
[2012-05-01 11:58:57 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2012-05-01 11:58:51 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Narzędzia administracyjne
[2012-05-01 11:58:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2012-05-01 11:57:15 | 000,000,000 | ---D | C] -- C:\Program Files\VistaExperience.org
[2012-05-01 11:55:42 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2012-05-01 11:55:37 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2012-05-01 11:55:36 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2012-05-01 11:55:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2012-05-01 11:55:33 | 000,418,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2012-05-01 11:55:32 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2012-05-01 11:55:31 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2012-05-01 11:55:31 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2012-05-01 11:55:31 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2012-05-01 11:55:29 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2012-05-01 11:55:24 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2012-05-01 11:55:23 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2012-05-01 11:55:22 | 000,253,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2012-05-01 11:55:21 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2012-05-01 11:55:20 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2012-05-01 11:55:20 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2012-05-01 11:55:19 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2012-05-01 11:55:18 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2012-05-01 11:55:18 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2012-05-01 11:55:18 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2012-05-01 11:55:17 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2012-05-01 11:55:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2012-05-01 11:55:17 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2012-05-01 11:55:17 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2012-05-01 11:55:17 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2012-05-01 11:55:16 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2012-05-01 11:55:16 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2012-05-01 11:55:16 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2012-05-01 11:55:16 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2012-05-01 11:55:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2012-05-01 11:55:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2012-05-01 11:54:55 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2012-05-01 11:54:55 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2012-05-01 11:54:54 | 000,591,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2012-05-01 11:54:54 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2012-05-01 11:54:53 | 000,351,744 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2012-05-01 11:54:51 | 000,592,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2012-05-01 11:54:51 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2012-05-01 11:54:50 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2012-05-01 11:54:48 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2012-05-01 11:54:45 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2012-05-01 11:54:45 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2012-05-01 11:54:44 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2012-05-01 11:54:43 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2012-05-01 11:54:39 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2012-05-01 11:54:39 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2012-05-01 11:54:39 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2012-05-01 11:54:38 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2012-05-01 11:54:37 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2012-05-01 11:54:37 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2012-05-01 11:54:37 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2012-05-01 11:54:36 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2012-05-01 11:54:35 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2012-05-01 11:54:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2012-05-01 11:54:34 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2012-05-01 11:54:34 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2012-05-01 11:54:33 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2012-05-01 11:54:33 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2012-05-01 11:54:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2012-05-01 11:54:29 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2012-05-01 11:54:29 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2012-05-01 11:54:29 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2012-05-01 11:54:26 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2012-05-01 11:54:26 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2012-05-01 11:54:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2012-05-01 11:54:25 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2012-05-01 11:54:24 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2012-05-01 11:54:24 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2012-05-01 11:54:21 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2012-05-01 11:54:21 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2012-05-01 11:54:08 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2012-05-01 11:54:08 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2012-05-01 11:54:07 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2012-05-01 11:54:06 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2012-05-01 11:53:44 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Akcesoria
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012-05-01 15:43:37 | 000,003,172 | ---- | M] () -- C:\WINDOWS\notepad.ini
[2012-05-01 15:40:16 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-05-01 15:40:11 | 804,114,432 | -HS- | M] () -- C:\hiberfil.sys
[2012-05-01 15:40:08 | 000,263,648 | ---- | M] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2012-05-01 15:37:44 | 000,000,510 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Skrót do OTL.lnk
[2012-05-01 15:02:46 | 000,100,640 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-05-01 13:48:53 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2012-05-01 13:24:49 | 000,000,688 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Autoruns.lnk
[2012-05-01 13:20:01 | 000,000,688 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\CCleaner.lnk
[2012-05-01 13:18:47 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Eusing Free Registry Cleaner.lnk
[2012-05-01 13:15:16 | 000,000,790 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes Anti-Malware.lnk
[2012-05-01 13:12:24 | 000,000,515 | ---- | M] () -- C:\WINDOWS\System\Cm108.ini
[2012-05-01 13:00:08 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Notepad++.lnk
[2012-05-01 12:56:01 | 000,000,591 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\AQQ.lnk
[2012-05-01 12:52:14 | 000,000,923 | ---- | M] () -- C:\Documents and Settings\Admin\Pulpit\Revo Uninstaller.lnk
[2012-05-01 12:43:02 | 000,497,586 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2012-05-01 12:43:02 | 000,438,750 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012-05-01 12:43:02 | 000,087,244 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2012-05-01 12:43:01 | 000,069,926 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012-05-01 12:40:14 | 000,000,062 | ---- | M] () -- C:\WINDOWS\Cm108.ini.cfl
[2012-05-01 12:36:19 | 000,000,644 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AIMP2.lnk
[2012-05-01 12:34:17 | 000,000,047 | ---- | M] () -- C:\WINDOWS\TransBar.ini
[2012-05-01 12:30:15 | 000,000,730 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2012-05-01 12:17:22 | 000,002,184 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-05-01 12:16:07 | 000,001,195 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2012-05-01 12:04:45 | 000,410,984 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2012-05-01 12:04:45 | 000,148,888 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2012-05-01 12:04:45 | 000,144,792 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2012-05-01 12:04:45 | 000,144,792 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2012-05-01 12:04:45 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2012-05-01 12:03:55 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012-05-01 12:03:55 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2012-05-01 12:03:55 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012-05-01 12:03:55 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2012-05-01 12:03:55 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2012-05-01 12:03:45 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2012-05-01 12:03:45 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2012-05-01 12:03:43 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012-05-01 12:03:24 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2012-05-01 11:59:03 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012-05-01 11:53:24 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2012-04-04 15:56:40 | 000,022,344 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012-05-01 15:37:44 | 000,000,510 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Skrót do OTL.lnk
[2012-05-01 13:48:53 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2012-05-01 13:48:48 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012-05-01 13:48:06 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2012-05-01 13:48:02 | 000,283,648 | ---- | C] () -- C:\WINDOWS\NOTEPAD.EXE
[2012-05-01 13:46:45 | 000,100,640 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-05-01 13:45:53 | 000,000,211 | -HS- | C] () -- C:\boot.ini
[2012-05-01 13:45:51 | 000,001,195 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2012-05-01 13:38:03 | 000,003,172 | ---- | C] () -- C:\WINDOWS\notepad.ini
[2012-05-01 13:24:49 | 000,000,688 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Autoruns.lnk
[2012-05-01 13:20:01 | 000,000,688 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\CCleaner.lnk
[2012-05-01 13:18:47 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Eusing Free Registry Cleaner.lnk
[2012-05-01 13:15:16 | 000,000,790 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Malwarebytes Anti-Malware.lnk
[2012-05-01 12:56:14 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Notepad++.lnk
[2012-05-01 12:56:01 | 000,000,591 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\AQQ.lnk
[2012-05-01 12:52:14 | 000,000,923 | ---- | C] () -- C:\Documents and Settings\Admin\Pulpit\Revo Uninstaller.lnk
[2012-05-01 12:41:15 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\rt2661.bin
[2012-05-01 12:41:15 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\rt2561s.bin
[2012-05-01 12:41:15 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\rt2561.bin
[2012-05-01 12:40:14 | 000,000,515 | ---- | C] () -- C:\WINDOWS\System\Cm108.ini
[2012-05-01 12:40:14 | 000,000,062 | ---- | C] () -- C:\WINDOWS\Cm108.ini.cfl
[2012-05-01 12:39:33 | 000,000,939 | R--- | C] () -- C:\WINDOWS\Cm108.ini.cfg
[2012-05-01 12:39:21 | 000,001,316 | R--- | C] () -- C:\WINDOWS\cm108.ini
[2012-05-01 12:36:19 | 000,000,644 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AIMP2.lnk
[2012-05-01 12:30:15 | 000,000,736 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
[2012-05-01 12:30:15 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2012-05-01 12:28:29 | 000,000,809 | ---- | C] () -- C:\Documents and Settings\Admin\Menu Start\Programy\Internet Explorer.lnk
[2012-05-01 12:28:25 | 000,000,744 | ---- | C] () -- C:\Documents and Settings\Admin\Menu Start\Programy\Outlook Express.lnk
[2012-05-01 12:28:15 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Admin\Menu Start\Programy\Pomoc zdalna.lnk
[2012-05-01 12:28:15 | 000,000,794 | ---- | C] () -- C:\Documents and Settings\Admin\Menu Start\Programy\Windows Media Player.lnk
[2012-05-01 12:25:41 | 000,263,648 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfi.dat
[2012-05-01 12:17:21 | 804,114,432 | -HS- | C] () -- C:\hiberfil.sys
[2012-05-01 12:15:55 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012-05-01 12:10:55 | 000,002,272 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2012-05-01 12:05:52 | 000,000,047 | ---- | C] () -- C:\WINDOWS\TransBar.ini
[2012-05-01 12:04:04 | 000,652,287 | ---- | C] () -- C:\WINDOWS\Nowe_konto.exe
[2012-05-01 12:03:55 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2012-05-01 12:03:55 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2012-05-01 12:03:55 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2012-05-01 12:03:55 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2012-05-01 12:03:55 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2012-05-01 12:03:45 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2012-05-01 12:03:45 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2012-05-01 12:03:43 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2012-05-01 12:02:19 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Movie Maker.lnk
[2012-05-01 11:59:03 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012-05-01 11:55:18 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2012-05-01 11:55:18 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2012-05-01 11:55:14 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2012-05-01 11:54:58 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-05-01 15:06:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\AIMP
[2012-05-01 12:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Foxit
[2012-05-01 13:47:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Admin\Dane aplikacji\Notepad++
[2012-05-01 12:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Administrator\Dane aplikacji\Foxit
[2012-05-01 12:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Default User\Dane aplikacji\Foxit
[2012-05-01 12:04:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Lukasz\Dane aplikacji\Foxit
 
[color=#E56717]========== Purity Check ==========[/color]
 
 

< End of report >
Na górę
Awatar użytkownika
kominekl

Ekspert
Posty: 5855
Rejestracja: 27 lis 2011, 14:25
Kontaktowanie:
Skontaktuj się z kominekl

Log z OTL

Post01 maja 2012, 17:46

Logi.


W OTL -> Sprzątanie.

Error - 2012-05-01 06:38:29 | Computer Name = PC | Source = atapi | ID = 262155
Description = Sterownik wykrył błąd kontrolera na \Device\Ide\IdePort1.


Wejdź w Menedżer Urządzeń -> Kontrolery IDE ATA/ATAPI -> Podstawowy kanał IDE -> Ustawienia zaawansowane -> Sprawdź, jak jest ustawiony Bieżący tryb transferu. To samo robisz dla Pomocniczego kanału IDE.

"{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 14


Odinstaluj i zainstaluj najnowszą wersję -> Dostępne tylko dla zarejestrowanych użytkowników.

Kroki Finalizujące.


Przeczyść dysk i rejestr CCleaner`em -> http://www.hotfix.pl/infusions/pro_down ... r-p158.htm.
Wykonaj pełne skanowanie Malwarebytes`em Anti-Malware (nie gódź się na wersję testową) -> http://www.hotfix.pl/infusions/pro_down ... e-p164.htm, jeśli coś znajdzie usuń i daj raport.
Kiedy komputery staną się twoim jedynym życiem, jedynym totemem odstraszającym klątwę nudy, wtedy prędzej czy później granica między tymi dwoma wymiarami zniknie i postacie z Błękitnej Pustki zaczną pojawiać się w Realu. Czasem są twoimi przyjaciółmi. A czasem nie.
Na górę
Maniek13

Użytkownik
Posty: 141
Rejestracja: 21 kwie 2012, 16:22

Log z OTL

Post01 maja 2012, 17:57

Z tymi kontrolerami IDE ATA/ATAPI zauważyłem już godzinę temu. Było na PIO więc odinstalowałem kontroler i po ponownym uruchomieniu był już DMA. Jak zrobię pełne skanowanie to dam raport.
Na górę
Awatar użytkownika
kominekl

Ekspert
Posty: 5855
Rejestracja: 27 lis 2011, 14:25
Kontaktowanie:
Skontaktuj się z kominekl

Log z OTL

Post01 maja 2012, 17:59

Maniek13 pisze:Z tymi kontrolerami IDE ATA/ATAPI zauważyłem już godzinę temu. Było na PIO więc odinstalowałem kontroler i po ponownym uruchomieniu był już DMA. Jak zrobię pełne skanowanie to dam raport.


I słusznie. Mnie nie było, wiec nie miałem kiedy zauważyć ;) . Wykonaj resztę instrukcji.
Kiedy komputery staną się twoim jedynym życiem, jedynym totemem odstraszającym klątwę nudy, wtedy prędzej czy później granica między tymi dwoma wymiarami zniknie i postacie z Błękitnej Pustki zaczną pojawiać się w Realu. Czasem są twoimi przyjaciółmi. A czasem nie.
Na górę
Maniek13

Użytkownik
Posty: 141
Rejestracja: 21 kwie 2012, 16:22

Log z OTL

Post01 maja 2012, 20:08

Log z Malwarebytes :

Kod: Zaznacz cały

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Wersja bazy: v2012.05.01.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Admin :: PC [administrator]

2012-05-01 19:15:34
mbam-log-2012-05-01 (19-15-34).txt

Typ skanowania: Pełne skanowanie
Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM
Odznaczone opcje skanowania: P2P
Przeskanowano obiektów: 230757
Upłynęło: 36 minut(y), 37 sekund(y)

Wykrytych procesów w pamięci: 0
(Nie znaleziono zagrożeń)

Wykrytych modułów w pamięci: 0
(Nie znaleziono zagrożeń)

Wykrytych kluczy rejestru: 0
(Nie znaleziono zagrożeń)

Wykrytych wartości rejestru: 1
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|ForceClassicControlPanel (Hijack.ControlPanelStyle) -> Data: 1 -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.

Wykryte wpisy rejestru systemowego: 3
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Złe: (0) Dobre: (1) -> Dodanie do kwarantanny i naprawa pliku zakończyły się powodzeniem.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowHelp (PUM.Hijack.StartMenu) -> Złe: (0) Dobre: (1) -> Dodanie do kwarantanny i naprawa pliku zakończyły się powodzeniem.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoSMHelp (PUM.Hijack.Help) -> Złe: (1) Dobre: (0) -> Dodanie do kwarantanny i naprawa pliku zakończyły się powodzeniem.

wykrytych folderów: 0
(Nie znaleziono zagrożeń)

Wykrytych plików: 7
F:\System Volume Information\_restore{C43214D5-8695-4B56-9420-4F90FD6F6A2F}\RP14\A0083177.exe (Backdoor.Hupigon) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
F:\System Volume Information\_restore{EECF4443-B186-4F9C-BC4B-5815EDB7369A}\RP12\A0022181.exe (Trojan.Downloader) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
F:\System Volume Information\_restore{EECF4443-B186-4F9C-BC4B-5815EDB7369A}\RP12\A0022185.exe (Backdoor.Hupigon) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
F:\link do pliku (PUP.ToolbarDownloader) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
F:\link do pliku (PUP.ToolbarDownloader) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
F:\link do pliku (PUP.ToolbarDownloader) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.
G:\System Volume Information\_restore{C4D16933-C4A8-4C1C-9F68-9E118FC99D1F}\RP8\A0002906.exe (PUP.ToolbarDownloader) -> Dodanie do kwarantanny i usunięcie pliku zakończyły się powodzeniem.

(zakończone)
Na górę
Awatar użytkownika
kominekl

Ekspert
Posty: 5855
Rejestracja: 27 lis 2011, 14:25
Kontaktowanie:
Skontaktuj się z kominekl

Log z OTL

Post01 maja 2012, 20:18

Malwarebytes.


Opróżnij kwarantannę Malwarebytes`a (Usuń Wszystko).
Kiedy komputery staną się twoim jedynym życiem, jedynym totemem odstraszającym klątwę nudy, wtedy prędzej czy później granica między tymi dwoma wymiarami zniknie i postacie z Błękitnej Pustki zaczną pojawiać się w Realu. Czasem są twoimi przyjaciółmi. A czasem nie.
Na górę
Maniek13

Użytkownik
Posty: 141
Rejestracja: 21 kwie 2012, 16:22

Log z OTL

Post01 maja 2012, 20:27

Zrobiłem to od razu po zakończeniu skanowania.

@Edit czyli komputer jest już czysty ??
Na górę
Awatar użytkownika
kominekl

Ekspert
Posty: 5855
Rejestracja: 27 lis 2011, 14:25
Kontaktowanie:
Skontaktuj się z kominekl

Log z OTL

Post01 maja 2012, 20:28

Maniek13 pisze:Zrobiłem to od razu po zakończeniu skanowania.

@Edit czyli komputer jest już czysty ??


Jak najbardziej.
Kiedy komputery staną się twoim jedynym życiem, jedynym totemem odstraszającym klątwę nudy, wtedy prędzej czy później granica między tymi dwoma wymiarami zniknie i postacie z Błękitnej Pustki zaczną pojawiać się w Realu. Czasem są twoimi przyjaciółmi. A czasem nie.
Na górę
Maniek13

Użytkownik
Posty: 141
Rejestracja: 21 kwie 2012, 16:22

Log z OTL

Post01 maja 2012, 20:32

Ok dzięki za pomoc

Temat można zamknąć.
Na górę
Awatar użytkownika
kominekl

Ekspert
Posty: 5855
Rejestracja: 27 lis 2011, 14:25
Kontaktowanie:
Skontaktuj się z kominekl

Log z OTL

Post01 maja 2012, 20:51

Maniek13 pisze:temat można zamknąć.


Proszę o zamknięcie.
Kiedy komputery staną się twoim jedynym życiem, jedynym totemem odstraszającym klątwę nudy, wtedy prędzej czy później granica między tymi dwoma wymiarami zniknie i postacie z Błękitnej Pustki zaczną pojawiać się w Realu. Czasem są twoimi przyjaciółmi. A czasem nie.
Na górę

  • Reklama

Wróć do „Bezpieczeństwo”



Kto jest online

Użytkownicy przeglądający to forum: Obecnie na forum nie ma żadnego zarejestrowanego użytkownika i 3 gości